CVE-2001-1146

Sažetak

AllCommerce with debugging enabled in EnGarde Secure Linux 1.0.1 creates temporary files with predictable names, which allows local users to modify files via a symlink attack.

Reference

http://www.linuxsecurity.com/advisories/other_advisory-1492.html
http://www.securityfocus.com/bid/3016
https://exchange.xforce.ibmcloud.com/vulnerabilities/6830

CVSS

Base:	1.2
Impact:	2.9
Exploitability:	1.9

Pristup

Vektor	Složenost	Autentikacija
LOCAL	HIGH	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	PARTIAL	NONE

CVSS vektor

AV:L/AC:H/Au:N/C:N/I:P/A:N

Zadnje važnije ažuriranje

10-10-2017 - 01:30

Objavljeno

11-07-2001 - 04:00